NFUs

author: Moritz Muehlenhoff <jmm@debian.org> 2021-06-21 22:46:33 +0200
committer: Moritz Muehlenhoff <jmm@debian.org> 2021-06-21 22:46:33 +0200
commit: 26c1b644ff465a76abf03f7d92fa72eded5c0aa4 (patch)
tree: e297e758800abfcef8d45992ee9752cd178aeb0f /data/CVE
parent: 6b5e29ff8cbc5f026b469e6ee338d57153dfb466 (diff)
4 files changed, 12 insertions, 12 deletions
diff --git a/data/CVE/list.2013 b/data/CVE/list.2013
index d6009238ff..6fa180d99d 100644
--- a/data/CVE/list.2013
+++ b/data/CVE/list.2013
@@ -1,5 +1,5 @@
 CVE-2013-20002 (Elemin allows remote attackers to upload and execute arbitrary PHP cod ...)
-	TODO: check
+	NOT-FOR-US: Elemin
 CVE-2013-20001 (An issue was discovered in OpenZFS through 2.0.3. When an NFS share is ...)
 	NOT-FOR-US: OpenZFS
 CVE-2013-7491 (An issue was discovered in the DBI module before 1.628 for Perl. Stack ...)
diff --git a/data/CVE/list.2018 b/data/CVE/list.2018
index 141ff1d15e..5872163ed4 100644
--- a/data/CVE/list.2018
+++ b/data/CVE/list.2018
@@ -1,5 +1,5 @@
 CVE-2018-25016 (Greenbone Security Assistant (GSA) before 7.0.3 and Greenbone OS (GOS) ...)
-	TODO: check
+	NOT-FOR-US: Greenbone Security Assistant
 CVE-2018-25015 (An issue was discovered in the Linux kernel before 4.14.16. There is a ...)
 	- linux 4.14.17-1
 	[stretch] - linux 4.9.80-1
diff --git a/data/CVE/list.2019 b/data/CVE/list.2019
index b854c7e3f8..62d947d9a4 100644
--- a/data/CVE/list.2019
+++ b/data/CVE/list.2019
@@ -1,5 +1,5 @@
 CVE-2019-25047 (Greenbone Security Assistant (GSA) before 8.0.2 and Greenbone OS (GOS) ...)
-	TODO: check
+	NOT-FOR-US: Greenbone Security Assistant
 CVE-2019-25046 (The Web Client in Cerberus FTP Server Enterprise before 10.0.19 and 11 ...)
 	NOT-FOR-US: Cerberus FTP Server Enterprise
 CVE-2019-25045 (An issue was discovered in the Linux kernel before 5.0.19. The XFRM su ...)
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index ad9778f963..ba71730543 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -1,7 +1,7 @@
 CVE-2021-3612
 	RESERVED
 CVE-2021-35066 (An XXE vulnerability exists in ConnectWise Automate before 2021.0.6.13 ...)
-	TODO: check
+	NOT-FOR-US: ConnectWise Automate
 CVE-2021-35065
 	RESERVED
 CVE-2021-35064
@@ -3259,7 +3259,7 @@ CVE-2021-33574 (The mq_notify function in the GNU C Library (aka glibc) versions
 CVE-2021-33573
 	RESERVED
 CVE-2021-33572 (A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Lin ...)
-	TODO: check
+	NOT-FOR-US: F-Secure
 CVE-2021-33571 (In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4,  ...)
 	{DLA-2676-1}
 	- python-django 2:2.2.24-1 (bug #989394)
@@ -3766,7 +3766,7 @@ CVE-2021-33349
 CVE-2021-33348
 	RESERVED
 CVE-2021-33347 (An issue was discovered in JPress v3.3.0 and below. There are XSS vuln ...)
-	TODO: check
+	NOT-FOR-US: JPress
 CVE-2021-33346
 	RESERVED
 CVE-2021-33345
@@ -5217,13 +5217,13 @@ CVE-2021-32699
 CVE-2021-32698
 	RESERVED
 CVE-2021-32697 (neos/forms is an open source framework to build web forms. By crafting ...)
-	TODO: check
+	NOT-FOR-US: neos/forms
 CVE-2021-32696 (The npm package "striptags" is an implementation of PHP's strip_tags i ...)
 	TODO: check
 CVE-2021-32695 (Nextcloud Android app is the Android client for Nextcloud. In versions ...)
-	TODO: check
+	NOT-FOR-US: Nextcloud Android app
 CVE-2021-32694 (Nextcloud Android app is the Android client for Nextcloud. In versions ...)
-	TODO: check
+	NOT-FOR-US: Nextcloud Android app
 CVE-2021-32693 (Symfony is a PHP framework for web and console applications and a set  ...)
 	- symfony <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/symfony/symfony/security/advisories/GHSA-rfcf-m67m-jcrq
@@ -7426,7 +7426,7 @@ CVE-2021-31771
 CVE-2021-31770
 	RESERVED
 CVE-2021-31769 (MyQ Server in MyQ X Smart before 8.2 allows remote code execution by u ...)
-	TODO: check
+	NOT-FOR-US: MyQ
 CVE-2021-31768
 	RESERVED
 CVE-2021-31767
@@ -13193,7 +13193,7 @@ CVE-2021-29338 (Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to c
 	[stretch] - openjpeg2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/uclouvain/openjpeg/issues/1338
 CVE-2021-29337 (MODAPI.sys in MSI Dragon Center 2.0.104.0 allows low-privileged users  ...)
-	TODO: check
+	NOT-FOR-US: MSI
 CVE-2021-29336
 	RESERVED
 CVE-2021-29335
@@ -14698,7 +14698,7 @@ CVE-2021-28686 (AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3
 CVE-2021-28685 (AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow ...)
 	NOT-FOR-US: ASUS
 CVE-2021-28684 (The XML parser used in ConeXware PowerArchiver before 20.10.02 allows  ...)
-	TODO: check
+	NOT-FOR-US: ConeXware PowerArchiver
 CVE-2021-28683 (An issue was discovered in Envoy through 1.71.1. There is a remotely e ...)
 	- envoyproxy <itp> (bug #987544)
 CVE-2021-28682 (An issue was discovered in Envoy through 1.71.1. There is a remotely e ...)
author	Moritz Muehlenhoff <jmm@debian.org>	2021-06-21 22:46:33 +0200
committer	Moritz Muehlenhoff <jmm@debian.org>	2021-06-21 22:46:33 +0200
commit	26c1b644ff465a76abf03f7d92fa72eded5c0aa4 (patch)
tree	e297e758800abfcef8d45992ee9752cd178aeb0f /data/CVE
parent	6b5e29ff8cbc5f026b469e6ee338d57153dfb466 (diff)